Lancom Systems 8011 VPN, 7111 VPN manual Bridgehead to the WAN, Areas of deployment for routers

Page 14

EN

LANCOM 7111 VPN – LANCOM 8011 VPN

Chapter 1: Introduction

Connecting a LAN to the Internet does not technically differ from coupling two LANs. The only difference is that it is not just a handful of computers behind the Internet provider's router. Instead, it is the net of the networks - the public Internet.

1.3.1Bridgehead to the WAN

All routers have at least two connections: at least one for the LAN

at least one for WAN connections

In addition to LAN connectivity (10/100 Mbps Ethernet), several models also offer an integrated switch. For the connecting to the WAN, the routers use ISDN, xDSL/cable or ADSL connectors. Several devices contain additionally a wireless network card and can thus integrate also stations of WLANs (Wireless LANs) into the routing.

The router's task is to transfer data from the local network to the target net- work via a suitable WAN connection. Data is also transferred from the WAN to the desired recipients in the LAN.

1.3.2Areas of deployment for routers

Not possible with all LANCOM devices.

Routers are mainly used for the following applications:

Internet access for a LAN (e.g. via DSL or ISDN)

The Internet consists of countless large and small networks that are inter- connected into the world's largest WAN via routers. The router links all the workstation computers on your local area network to the global Internet. Security functions such as IP masquerading protect your LAN against unauthorized access from outside.

LAN to LAN coupling (via VPN or ISDN)

LAN to LAN coupling links individual LANs to form one large network, even if this means crossing continents. A typical example: A branch office is to be connected to the LAN of the headquarters. In principle, you can connect LANs in two ways:

High-speed coupling via VPN

The fastest and most economical LAN to LAN links are possible with VPN (Virtual Private Network) technology, as VPN uses the Internet as the basis for its communications. The fast xDSL connection of the router comes into its own here. The precondition: a VPN gateway with

14

Page 13 Page 15
Image 14
Page 13 Page 15
Contents Lancom 7111 VPN Lancom 8011 VPN Lancom Systems GmbH, Wuerselen Germany. All rights reserved Security settings PrefaceModel variants This documentation was compiled … Info@lancom.deContents Sending faxes with Lancapi Providing dial-up accessLinking two networks Troubleshooting AppendixIntroduction Which use does VPN offer?Conventional network infrastructure IsdnNetworking via the Internet Firewall What does a router do? Denial-of-Service ProtectionQuality-of-Service / Traffic management Areas of deployment for routers Internet access for a LAN e.g. via DSL or IsdnBridgehead to the WAN LAN to LAN coupling via VPN or IsdnConventional via Isdn Remote access to the company network via VPN or IsdnWhat can your Lancom router do? Lancom Quality of Service System preconditions InstallationPackage contents Status displays Access to the LAN via the TCP/IP protocolIntroducing Lancom router Front sideLED remains lit green Online LED indicates the overall status of all WAN portsFlashing Power LED but no connection? LancomConnection status of Isdn S0 connection Connection status of the WAN connectionData traffic via the WAN connection LCD display Connection status of the serial configuration port7111 VPN, for both Isdn B channels with Lancom 8011 VPN Hardware installation Back of the unitInstallation Software installation Starting Lancom setupWhich software should you install? Which information is necessary? Basic configuration1 TCP/IP settings Information required for manual TCP/IP configuration New LAN-fully automatic configuration possibleConfigure manually nevertheless? IP address and netmask for the Lancom routerSettings for the Isdn connection Configuration protectionSettings for the DSL connection Enable Dhcp server?LANconfig Instructions for LANconfigStart up LANconfig by clicking Start Programs Lancom Connect charge protectionComplete the configuration with Finish Instructions for WEBconfig Network without Dhcp serverOr with a name as discribed above Starting the wizards in WEBconfigNetwork with Dhcp server WEBconfig main menu will be displayed Entering the password in the web browser TCP/IP settings to workstation PCs IP address assignment via the Lancom router defaultIP address assignment via a separate Dhcp server Manual IP address assignmentUser name and password Setting up Internet accessDoes the setup wizard know your Internet provider? Additional information for unknown Internet providersDynamic channel bundling Isdn only Isdn dial-in number User name and passwordAdditional connection options LANconfig Quick access to the setup wizards Complete the configuration with ApplySecurity aspects Always configure both sidesLinking two networks What information is necessary? General informationName of the remote station is needed for its identification Settings for the TCP/IP router Extranet VPN Settings for the IPX routerDNS access to the remote LAN Settings for NetBIOS routing Perform the configuration on both routers, one at a time Ping quick testing for TCP/IP connections Providing dial-up access Which information is required?Isdn calling line identity CLI Coupling EntrySettings for TCP/IP Settings for IPXWAN Dial-up via Isdn Settings for the dial-in computerDial-up via VPN Instructions for LANconfig Providing dial- up access Sending faxes with Lancapi Installation of the Lancom Capi fax modem Installation of the MS Windows fax service Select the option Printers and Faxes from the control panelSend a fax with any given office application Send a fax with the MS Windows fax serviceSending a fax Sending faxes with Lancapi Wizard for LANconfig Security settingsSecurity settings wizard Wizard for WEBconfig Firewall wizardRules Security checklistConfiguration under WEBconfig Have you activated the Firewall? Have you assigned a password for the configuration?Have you permitted remote configuration? Do you make use of a ’Deny All’ Firewall strategy?Have you closed critical ports with filters? No WAN connection is established TroubleshootingProblems with the cabling? DSL data transfer is slowIncreasing the TCP/IP window size under Windows Cable testingUnwanted connections under Windows XP LAN statisticsTroubleshooting Performance data and specifications AppendixRights for up to 16 administrators ISDN-S0interface Contact assignmentDSL interface Pin RJ45 socketEthernet interfaces 10/100Base-T Configuration interface OutbandCE declaration of conformity Pin mini-DIN socketNumerics Connector cable Channel Data compression Dial-innumber InstallationIPX conventions IPX router Settings Connector cable LAN to LAN coupling 14, 15, 30NetBIOS NetBIOS NetBIOS proxy Netmask Network segmentPackage contents Packet size adaption Password Security aspects Server Setup Specify MSNCheck connection Settings 28 , 32Temperature Time WEBconfig
Top Page Image Contents